UnHook
WSPStartup
installhook
Static task
static1
Behavioral task
behavioral1
Sample
bdb908d29b69dfa523a92ada499c367d15d3db2f261453108ff19d79cdfa42f2.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
bdb908d29b69dfa523a92ada499c367d15d3db2f261453108ff19d79cdfa42f2.dll
Resource
win10v2004-20220812-en
Target
bdb908d29b69dfa523a92ada499c367d15d3db2f261453108ff19d79cdfa42f2
Size
132KB
MD5
474f838e118b5916a5c4a2748dd8550b
SHA1
7f2d4112ef7febbcefeb4515a94f0643cb1fbe0c
SHA256
bdb908d29b69dfa523a92ada499c367d15d3db2f261453108ff19d79cdfa42f2
SHA512
42ce36349c54292a2e523c4eeaeb9ad644661a164a0ce47bcf735473652016e082f62a7694a78b26e913ac8fca9f3bbc3d8a47d5682f0822172b22cc70742257
SSDEEP
1536:3QCDSnZm7ed3e2cnTc2vo8VpNh5HnEVco0ldU1QdstPsvYM9iT/B5Ae+nYTr7lLK:3NuZBd3e2cAMz3hnBpLQwUPTr7llLs
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
LoadLibraryA
FindNextFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
SetCurrentDirectoryA
GetCurrentDirectoryA
CloseHandle
GetFileSize
CreateFileA
MoveFileA
SetFileTime
GetFileTime
GetFileAttributesA
SetFileAttributesA
CopyFileA
OutputDebugStringA
WriteFile
GetEnvironmentVariableA
ReadFile
SetFilePointer
GetLocalTime
TerminateThread
GlobalFree
GlobalUnlock
GlobalHandle
GlobalLock
GlobalAlloc
GetModuleFileNameA
WaitForSingleObject
GetLastError
CreateMutexA
GetSystemDirectoryA
LockResource
SizeofResource
LoadResource
FindResourceA
GetVersion
GetPrivateProfileStringA
WritePrivateProfileStringA
CreateDirectoryA
CreateProcessA
GetStartupInfoA
DeleteFileA
MoveFileExA
SystemTimeToFileTime
GetProcAddress
GetTempPathA
GetVolumeInformationA
ReleaseMutex
ExpandEnvironmentStringsW
lstrcpyA
CompareStringW
CompareStringA
SetEndOfFile
lstrcmpiA
VirtualQuery
VirtualProtect
FreeLibrary
GetCurrentProcess
WriteProcessMemory
GetWindowsDirectoryA
FindFirstFileA
FindClose
GetComputerNameA
GetVersionExA
GetLogicalDrives
GetDriveTypeA
IsBadCodePtr
SetEnvironmentVariableA
IsBadReadPtr
SetUnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
FlushFileBuffers
SetStdHandle
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetFileType
GetStdHandle
SetHandleCount
GetFullPathNameA
LCMapStringW
LCMapStringA
GetOEMCP
GetCPInfo
HeapSize
TerminateProcess
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetDiskFreeSpaceExA
GetACP
CreateThread
GetTempFileNameA
Sleep
GetTimeZoneInformation
GetSystemTime
HeapAlloc
HeapFree
RtlUnwind
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
WideCharToMultiByte
GetCommandLineA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
GetModuleHandleA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
DeleteCriticalSection
ExitProcess
GetCurrentThreadId
ToAscii
GetKeyboardState
UnhookWindowsHookEx
GetForegroundWindow
GetKeyboardLayout
GetWindowTextA
CallNextHookEx
wsprintfA
SetWindowsHookExA
ControlService
RegQueryValueExA
RegOpenKeyExA
GetUserNameA
OpenSCManagerA
OpenServiceA
ChangeServiceConfigA
RegCloseKey
CreateServiceA
StartServiceA
CloseServiceHandle
RegEnumKeyExA
ShellExecuteA
getsockname
WSAStartup
WSACleanup
recv
select
send
inet_ntoa
connect
shutdown
closesocket
htonl
htons
ntohl
WSCEnumProtocols
gethostbyname
WSCDeinstallProvider
WSCWriteProviderOrder
WSCInstallProvider
ntohs
getsockopt
getpeername
WSCGetProviderPath
inet_addr
socket
ImmReleaseContext
ImmGetCompositionStringA
ImmGetDescriptionA
ImmGetContext
UnHook
WSPStartup
installhook
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ